Page MenuHome GnuPG
Create Task
Maniphest T5951

gpgme: Add support for refreshing OpenPGP keys
Open, NormalPublic
Actions

Description

gpgme should allow refreshing OpenPGP keys via the external methods as defined by the auto-key-locate option and from the configured keyserver, i.e. a combination of --locate-external-keys and --refresh-keys (or --recv-keys).

Revisions and Commits

rM GPGME
rM99c1b14470f2 doc: Update NEWS
rMc3b183831db5 qt: Remove job for refreshing OpenPGP keys
rM5d19eb4ad5ad core: Handle import status lines during keylist operation
rM15a4940aa730 qt: Use lambda instead of std::bind
rM9e8c8e448ec8 qt: Revert change of result signal of RefreshKeysJob
rMc64a8daf507a qt: Emit import result when refreshing OpenPGP keys
rM3519d6117332 cpp: Allow retrieving import result of key listing with locate mode
rMd911a1536488 cpp: Allow merging the results of two imports
rMf3ca57dfd7af core: Handle import status lines during keylist operation
rMe12861f18c6b qt: Add job for refreshing OpenPGP keys
rM99fd565889f3 qt: Add debug helper for Result classes with output stream operator
rM0c304beeaab5 qt: Factor out helper for getting the fingerprints of some keys
rM34786132fed0 cpp: Add RAII class for saving/restoring the key list mode
rM54c4fd16d183 qt: Fix connection to readyReadStandardOutput signal
rMf4c356092571 qt: Make RefreshKeysJob result compatible with standard job result
rM9686258bd167 qt: Add test runner for refresh job
rMfd97cbaa44b8 qt: Allow refreshing a list of keys
rM62e770971786 qt: Minor refactoring
rM359906c8bcde cpp,tests: Verify that requested keylist mode is used
rMf47bc992ae6c qt: Rename QGpgMERefreshKeysJob to QGpgMERefreshSMIMEKeysJob
rMaff9aaac6845 core: Support --locate-external-keys command of gpg
rMdea872f21ff7 cpp: Support new keylist modes

Related Objects
Search...

Event Timeline

ikloecker triaged this task as Normal priority.Apr 27 2022, 3:47 PM
ikloecker created this task.
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Apr 27 2022, 5:26 PM
ikloecker added a commit: rMaff9aaac6845: core: Support --locate-external-keys command of gpg.Apr 27 2022, 5:28 PM
ikloecker added a commit: rMdea872f21ff7: cpp: Support new keylist modes.
ikloecker added a commit: rM359906c8bcde: cpp,tests: Verify that requested keylist mode is used.May 2 2022, 10:10 AM
ikloecker added a commit: rMf47bc992ae6c: qt: Rename QGpgMERefreshKeysJob to QGpgMERefreshSMIMEKeysJob.
ikloecker added a commit: rM62e770971786: qt: Minor refactoring.
ikloecker added a commit: rMfd97cbaa44b8: qt: Allow refreshing a list of keys.
ikloecker added a commit: rMf4c356092571: qt: Make RefreshKeysJob result compatible with standard job result.
ikloecker added a commit: rM9686258bd167: qt: Add test runner for refresh job.
ikloecker added a commit: rM54c4fd16d183: qt: Fix connection to readyReadStandardOutput signal.
ikloecker added a commit: rM99fd565889f3: qt: Add debug helper for Result classes with output stream operator.May 2 2022, 3:57 PM
ikloecker added a commit: rM0c304beeaab5: qt: Factor out helper for getting the fingerprints of some keys.
ikloecker added a commit: rM34786132fed0: cpp: Add RAII class for saving/restoring the key list mode.
ikloecker added a commit: rMe12861f18c6b: qt: Add job for refreshing OpenPGP keys.
ikloecker added a commit: rKLEOPATRA9e2dc6246e20: Add possibility to refresh an individual certificate.May 2 2022, 5:45 PM
ikloecker removed a commit: rKLEOPATRA9e2dc6246e20: Add possibility to refresh an individual certificate.May 2 2022, 6:08 PM
ikloecker added a commit: rMd911a1536488: cpp: Allow merging the results of two imports.May 5 2022, 10:53 AM
ikloecker added a commit: rMf3ca57dfd7af: core: Handle import status lines during keylist operation.
ikloecker added a commit: rM3519d6117332: cpp: Allow retrieving import result of key listing with locate mode.
ikloecker added a commit: rMc64a8daf507a: qt: Emit import result when refreshing OpenPGP keys.
ikloecker added a commit: rM15a4940aa730: qt: Use lambda instead of std::bind.
ikloecker added a commit: rM9e8c8e448ec8: qt: Revert change of result signal of RefreshKeysJob.
ikloecker closed this task as Resolved.May 5 2022, 3:23 PM
ikloecker added a commit: rM5d19eb4ad5ad: core: Handle import status lines during keylist operation.Jun 9 2022, 3:55 PM
aheinecke reopened this task as Open.Aug 3 2022, 2:41 PM

I am reopening this as the current behavior is strange in my opinion and should be changed before a release.
Currently the refreshopenpgpkeysjob does not refresh the OpenPGP Key by fingerprint but instead imports all keys with a similar e-mail address. This does not work for keys with no email. Also in case of public keyservers it can pull in keys that not belong to the user or are expired and so on.

This is very unexpected when used from Kleopatra and "Update" imports additional keys. At first I thought the additonal keys were imported because they had certified the key but when looking at the code i saw that it searched by email and not by fingerprint. What is the reason for this, or the intended use case?

ikloecker added a comment.Aug 3 2022, 3:08 PM

The lookup by email address is supposed to be done via WKD. Obviously, a lookup by fingerprint wouldn't work. And yes, obviously this may import additional key via WKD.

For the key server refresh the fingerprint should be used. But maybe I made a mistake.

ikloecker added a comment.Aug 3 2022, 3:20 PM

Okay. I do a KeyListJob with key list mode GpgME::LocateExternal which does the equivalent of --locate-external-keys and that depends on the auto-key-locate mechanisms which could include keyserver and other mechanisms besides WKD.

I could argue that people who have keyserver in their auto-key-locate list are okay with retrieving additional keys for email addresses. I mean they will fetch a "random" key matching the email address when they want to encrypt something for this email address. But, yes, they probably wouldn't expect this if they do an update.

I could add a special key list mode GpgME::WKD which would use --locate-external-keys with --auto-key-locate clear,wkd. Or shall I remove the update via WKD? Then, how would one update a key via WKD?

aheinecke added a comment.Aug 3 2022, 3:32 PM

I thought "Update" would do a key server refresh by fingerprint. Maybe I looked at the wrong job? In testing we noticed this because we suddenly had additional keys after using "update". "Update" in the certificate details should only search by fingerprint. Maybe when we know that the key source is WKD we could also look by mail address?

ikloecker added a commit: rMc3b183831db5: qt: Remove job for refreshing OpenPGP keys.Aug 4 2022, 12:32 PM
ikloecker changed the task status from Open to Testing.Aug 4 2022, 1:40 PM
ikloecker removed ikloecker as the assignee of this task.
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a project: Restricted Project.

See T5903: Kleopatra: Add refresh button in certificatedetails for the corresponding Kleopatra task. Kleopatra now uses the good old ReceiveKeysJob for doing a key refresh from the configured key server. The RefreshOpenPGPKeysJob has been removed.

The changes in gpgme are binary compatible to the latest released version of gpgme, but they are binary incompatible with previous intermediate snapshots.

aheinecke added a comment.Aug 4 2022, 3:34 PM

Thanks, the update button this is now more what I think is expected. Still I am not sure if removing it completely was neccessary, well we have it in the history now. Because I see the need to also update via WKD. Currently we only update from there if a key is expired but we would never see revocations. That is a problem that we will need some solution for at some point. But yeah in that case calling it "RefreshOpenPGPKeysJob" would be a misleading API Name anyhow. So its probably good that you removed it before the upcoming release.

ikloecker added a comment.Aug 4 2022, 3:56 PM

I have kept a backup copy of a WKDRefreshJob locally. ;-) But that's stuff for a different task.

ikloecker added a commit: rM99c1b14470f2: doc: Update NEWS.Aug 10 2022, 10:15 AM
werner mentioned this in T6128: Release GPGME 1.18.0.Aug 10 2022, 4:00 PM
werner removed a project: Restricted Project.Sep 22 2022, 11:03 AM
aheinecke added a comment.Dec 7 2022, 11:23 AM

Ok. So after further discussion. It is good that you kept a WKDRefreshJob copy :)

I would suggest the following, if it is somehow possible. I think we have the API for this now that we can search for WKD keys without importing them. We should additionally check WKD, if the key from WKD has the same fingerprint, we update, if it has not, we show the user something like a search result. Give indication that a different key was found for these UserIDs and then let the user decide to import them?

aheinecke merged a task: T6301: Kleopatra: Update Button does only check on keyserver.Dec 7 2022, 11:24 AM
aheinecke added a subscriber: ebo.
aheinecke changed the task status from Testing to Open.Dec 7 2022, 11:34 AM
ikloecker mentioned this in T5903: Kleopatra: Add refresh button in certificatedetails .Dec 7 2022, 11:45 AM